Privacy Policy
Last updated: July 2025
Sprkly ("we", "us", "our") is built for creators who want complete control of their content and data. This policy explains exactly what we collect, why, and how long we keep it.
1. Your Media Files
When you upload an image or video, it is immediately processed on our servers:
- Images are resized to a maximum of 1 080 px, converted to WebP, and stripped of all EXIF metadata (location, device info, timestamps).
- Videos are transcoded to H.264 / AAC in an MP4 container.
- A thumbnail is generated for preview purposes.
- The original file is permanently deleted from our storage immediately after processing is complete. It is never backed up, archived, or retained in any form.
Only the optimised version and thumbnail are stored in Cloudflare R2 object storage, located in data centres within the region you select (default: US-East).
2. Media Retention & Expiry
Optimised media is kept according to your plan:
| Plan | Media Retention |
|---|---|
| Free | 30 days after upload |
| Starter | 180 days after upload |
| Pro | Stored indefinitely while your account is active |
Expired files are deleted daily by an automated cleanup job. You can also delete any file manually via the dashboard at any time.
3. Account Data
We store the following account information to operate the service:
- Email address and display name (from your OAuth provider)
- Profile picture URL (served from your OAuth provider's CDN)
- Connected social platform handles and OAuth tokens (encrypted at rest — rollout in progress)
- Scheduled post captions and target platforms
- Referral codes and reward history
We do not sell, rent, or share your personal data with third parties for advertising purposes.
4. Third-Party Services
- Cloudflare R2 / D1 — file storage and database, US-East region by default.
- Stripe — payment processing. We only store the Stripe Payment Intent ID; your card details are never on our servers.
- OAuth providers (Google, etc.) — used for sign-in. We receive only the scopes you explicitly grant.
5. Account Deletion & Data Portability
You can delete your account at any time from Settings → Account. This permanently removes:
- Your account record and all associated data
- All media files (optimised versions and thumbnails) from Cloudflare R2
- All scheduled posts, referral records, and credit purchase history
Deletion is irreversible and is completed within 48 hours. Stripe records are subject to Stripe's own retention policies for financial compliance purposes.
To export a copy of your data before deleting, email privacy@sprkly.app.
6. Cookies & Analytics
We use a single session cookie for authentication (HttpOnly, Secure, SameSite=Lax). We do not use third-party tracking cookies or behavioural advertising scripts.
Basic anonymised usage metrics (page views, error rates) are collected via Cloudflare Analytics, which does not use cookies and does not track individuals across sites.
7. Contact
Questions about this policy or your data? Email privacy@sprkly.app. We respond within 5 business days.